132 matches found
CVE-2023-44220
SonicWall NetExtender Windows 32-bit and 64-bit client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system...
Spoofing
SonicWall NetExtender Windows 32-bit and 64-bit client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system...
CVE-2023-44220
SonicWall NetExtender Windows 32-bit and 64-bit client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system...
CVE-2023-44220
CVE-2023-44220 affects SonicWall NetExtender Windows client (32-bit and 64-bit) versions 10.2.336 and earlier. The root cause is a DLL Search Order Hijacking vulnerability in the startup DLL component, which could allow a local attacker to execute commands on the target system. Exploitation is de...
CVE-2023-44220
SonicWall NetExtender Windows 32-bit and 64-bit client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system...
SonicWall NetExtender Windows client security vulnerability
SonicWALL NetExtender Windows client is a Windows-based SSL VPN Virtual Private Network client application from SonicWALL, Inc. A security vulnerability exists in SonicWall NetExtender Windows client version 10.2.336 and earlier, which originates from a DLL hijacking vulnerability in the componen...
SonicWall NetExtender Windows Client DLL Search Order Hijacking Vulnerability
SonicWall NetExtender Windows 32 and 64-bit client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system. SonicWall strongly advises SSL VPN...
PT-2023-6720 · Sonicwall · Sonicwall Netextender Windows Client
Name of the Vulnerable Software and Affected Versions: SonicWall NetExtender Windows client versions 10.2.336 and earlier Description: The issue is related to a DLL Search Order Hijacking vulnerability in the start-up DLL component of the SonicWall NetExtender Windows client. This vulnerability c...
CVE-2023-44218
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation LPE vulnerability...
CVE-2023-44217
A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2.336 and earlier versions allows a local low-privileged user to gain system privileges through running repair functionality...
CVE-2023-44218
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation LPE vulnerability...
Privilege escalation
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation LPE vulnerability...
CVE-2023-44218
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation LPE vulnerability...
CVE-2023-44218
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation LPE vulnerability...
CVE-2023-44218
SonicWall NetExtender Pre-Logon vulnerability (CVE-2023-44218) affects the Windows NetExtender Pre-Logon feature, enabling local privilege escalation to SYSTEM. The root cause is described as insecure privilege management. Impact is unauthorized host access with SYSTEM privileges; no exploit deta...
SonicWALL NetExtender Security Vulnerabilities
SonicWALL NetExtender is a software application from SonicWALL USA that allows remote users to connect to remote networks in a secure manner. Provides simple and secure access for Windows and Linux users. A security vulnerability exists in SonicWall NetExtender that stems from a local elevation o...
SonicWALL NetExtender Security Vulnerabilities
SonicWALL NetExtender is a software application from SonicWALL USA that allows remote users to connect to remote networks in a secure manner. Provides simple and secure access for Windows and Linux users. A security vulnerability exists in SonicWALL NetExtender that stems from the presence of a...
SonicWall NetExtender Pre-Logon Vulnerability
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation LPE vulnerability. SonicWall strongly advises SSL VPN NetExtender client users to...
PT-2023-5680 · Microsoft +1 · Windows +1
Name of the Vulnerable Software and Affected Versions: SonicWall NetExtender affected versions not specified Description: A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges,...
CVE-2022-22281
A buffer overflow vulnerability in the SonicWall SSL-VPN NetExtender Windows Client 32 and 64 bit in 10.2.322 and earlier versions, allows an attacker to potentially execute arbitrary code in the host windows operating system...